ESET researchers discovered 11 vulnerable UEFI shim bootloaders signed by Microsoft that allow attackers to bypass UEFI ...
Windows administrators face a hard, irreversible deadline in three days: when July 14's cumulative update installs, Microsoft permanently removes the registry key that allowed domain controllers to ...
Socket traced the module to 222 repos across 190 accounts staging Vidar, RATs, and XMRig miners ...
A likely AI-generated PowerShell script mapped Active Directory after an attacker gained RDP access to a Windows Server with ...
A new malicious framework called OkoBot is delivering more than 20 payloads in attacks focused on stealing cryptocurrency ...
From late April 2026 to mid-June 2026, Microsoft Defender Experts observed increased ACR Stealer activity across customer ...
In Operation Muck and Load, over 200 GitHub repositories serve a Go module that leads to Windows malware infections.
Bitdefender researchers show how Windows bind links can create conflicting filesystem views to hide malware from endpoint ...